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Continued Examination Under 37 CFR 1.114 

1 . A request for continued examination under 37 CFR 1.114, including the fee set forth in 
37 CFR 1. 17(e), was filed in this application after final rejection. Since this application is 
eligible for continued examination under 37 CFR 1.114, and the fee set forth in 37 CFR 1. 17(e) 
has been timely paid, the finality of the previous Office action has been withdrawn pursuant to 
37 CFR 1.114. Applicant's submission filed on December 28 th , 2004 has been entered. 

Response to Arguments 

2. Applicant's arguments with respect to claims 1-79 have been considered but are moot in 
view of the new ground(s) of rejection. 

Oaim Rejections - 35 USC § 112 

3. The following is a quotation of the first paragraph of 35 U.S. C. 112: 

The specification shall contain a written description of the invention, and of the manner and process of making 
and using it, in such full, clear, concise, and exact terms as to enable any person skilled in the art to which it 
pertains, or with which it is most nearly connected, to make and use the same and shall set forth the best mode 
contemplated by the inventor of carrying out his invention. 

4. Claims 1 and 39 are rejected under 35 U.S.C. 1 12, first paragraph, as failing to comply 
with the written description requirement. The claim(s) contains subject matter which was not 
described in the specification in such a way as to reasonably convey to one skilled in the relevant 
art that the inventor(s), at the time the application was filed, had possession of the claimed 
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invention. Applicants disclose a system that "does not include/involve a master postal security 
device for transaction with the cryptographic module and for maintaining a pool of postage 
within the system purchased from the U.S. Postal Service" This is not specifically taught in the 
disclosure 

5. Claims 1 and 39 rejected under 35 U.S.C. 101 because the claimed invention is not 
supported by either a specific and substantial asserted utility or a well established utility. 

Applicants disclose a system that "does not include/involve a master postal security 
device for transaction with the cryptographic module and for maintaining a pool of postage 
within the system purchased from the U.S. Postal Service." However, the specification fail to 
provide an embodiment for the claimed limitation. Moreover, application claimed that the 
method or system does not include/involve a master PSD. In pages 6, 7 and 9 of the 
specification, it is dear that a the Applicant provide a Postal Server subsystem provides 
cryptographic module management services that allow multiple cryptographic modules to exist 
and function on one server, so additional cryptographic modules can easily be installed on a 
server. Therefore, the added limitation has no patentable wait since it fail to further limit the 
claimed invention and need not to be further address in the art rejection. 

Claims 1 and 39 also rejected under 35 U.S.C. 1 12, first paragraph. Specifically, since the 
claimed invention is not supported by either a specific and substantial asserted utility or a well 
established utility for the reasons set forth above, one skilled in the art clearly would not know 
how to use the claimed invention. 
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Claim Rejections - 35 USC §103 

6. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

7. Claims 1-79 are rejected under 35 U.S.C. 103(a) as being unpatentable over Whitehouse 
(U.S. Patent No. 6,005,945 {applicant submitted IDS)) in view of Lewis et al (U.S. Patent No. 
6,233,565). 

8. As per claim 1, Whitehouse teaches a scalable on-line system for printing value bearing 
items (VBI) {electronic distribution of postage, 100) comprising a client system {host system, fig 
3) for interfacing with one or more users {customer, 104) and a scalable server system {postal 
service, 180) capable of communicating with the client system over a communication network 
{network, fig 3) (see figs 3, 4, column 7 line 54-8 line 11) comprising a database {secure central 
computer 102, memory 154) remote from the users including information about the users {see fig 
4, column 8 lines 23-29, 54-58, 9 line 15-19), and a plurality of security device transaction data 
{transaction log) stored in the database for ensuring authenticity of the one or more users, 
wherein each security device transaction data can be processed in the server system in a stateless 
manner {see figs 3, 4, column 8 line 59-65, 9 line 12-50). Whitehouse fails to teach an inventive 
concept with a stateless cryptographic module for authenticating the one or more users. However 
Lewis et al teach an inventive concept with a stateless cryptographic module for authenticating 
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the one or more users (see fig 8 column 23 lines 66-26 line 12). Therefore, it would have been 
obvious to one of ordinary skill in the art the invention was made to modify the inventive 
concept of Whitehouse to include Lewis et al's a stateless cryptographic module for 
authenticating the one or more users because this would have enhance the security of the system. 

9. As per claim 2, Whitehouse teaches a system wherein each security device transaction 
data is related to a user (see column 9 lines 12-20). 

10. As per claim 3, Whitehouse teaches a system wherein the security device transaction data 
related to a user is loaded into the cryptographic module when the user requests to operate on a 
value bearing item (see column 9 lines 45-50). 

11. As per claim 4, Whitehouse teaches a system wherein the security device transaction data 
related to a user is updated and returned to the database (see column 9 line 51-63, 12 line 53-56). 

12. As per claim 5, Whitehouse teaches a system further comprising one module is capable 
of processing any of the plurality of security device transaction data (see column 9 line 51-63). 

13. As per claim 6, Whitehouse teaches a system wherein a user can be authenticated using 
any of the cryptographic modules (see column 9 line 51-63). 
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14. As per claim 7, Whitehouse teaches a system further comprising computer executable 
code for load-balancing to route user requests to the at least one more cryptographic module {see 
column 19 line 35-20 line 8). 

15. As per claim 8, Whitehouse teaches a system further comprising computer executable 
code for load-balancing to distribute traffic among the multiple cryptographic modules {see 
column 19 line 35-20 line 8). 

16. As per claim 9, Whitehouse teaches a system wherein the cryptographic module is 
capable of authenticating any of the one or more users {see column 19 line 35-20 line 8). 

17. As per claim 10, Whitehouse teaches a system wherein the database is partitioned across 
a plurality of physical databases {see fig 7). 

18. As per claim 11, Whitehouse teaches a system wherein the cryptographic module 
performs cryptographic function on a transaction related to the database {see fig 7). 

19. As per claim 12, Whitehouse teaches a system further comprising computer executable 
code for password authentication to prevent unauthorized access to the database {see column 10 
line 45-60). 
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20. As per claim 13, Whitehouse teaches a system wherein the database stores a first set of 
one or more last database transactions and the cryptographic module stores a second set of one or 
more last database transactions for comparison with the first set of one or more last database 
transactions stored in the database to verify each database transaction (see column 8 line 63-9 
line 12). 

21. As per claim 14, Whitehouse teaches a system wherein the cryptographic module 
prevents further database transactions if the second set of one or more last transaction stored in 
the cryptographic module does not compare with the first set of one or more last transaction 
stored in the database (see column 9 lines 1-12). 

22. As per claim 15, Whitehouse teaches a system wherein the cryptographic module 
includes a data validation subsystem for allowing the module to verify that data is up to date and 
an auto-recovery subsystem for automatically re-synchronize the module with the data (see 
column 9 line 32-50). 

23. As per claim 16, Whitehouse teaches a system wherein the cryptographic module 
includes a computer executable code for preventing unauthorized modification of data (see 
column 15 line 1-17). 
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24. As per claim 17, Whitehouse teaches a system wherein the cryptographic module 
includes a computer executable code for ensuring the proper operation of cryptographic security 
and VBI related meter functions (see column 16 line 45-67). 

25. As per claim 18, Whitehouse teaches a system wherein the cryptographic module 
includes a computer executable code for supporting multiple concurrent users (see fig 7). 

26. As per claim 19, Whitehouse teaches a system wherein the database includes one or more 
indicium data elements, data for account maintenance, and data for revenue protection (see fig 
4). 

27. As per claim 20 and 21, Whitehouse teaches a system wherein the database includes 
virtual meter information and a descending register data (see column 10 line 50-11 line 26, 14 
lines 25-36). 

28. As per claims 22 and 23, Whitehouse teaches a system wherein the value bearing item is 
a mail piece that comprises a digital signature (see column 7 lines 1-5, 8 line 47-51 and 11 lines 
27-29. 

29. As per claim 24, Whitehouse teaches a system wherein the cryptographic module 
performs cryptographic function on validation information according to a user request for 
printing a VBI (see column 9 lines 12-30). 
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30. As per claim 25, Whitehouse teaches a system wherein the cryptographic module 
generates data sufficient to print a postal indicium in compliance with postal service regulation 
on a mail piece (see column 8 line 65-9 line 11). 

31. As per claims 26-3 1, Whitehouse teaches a system wherein a bar code is printed on the 
value bearing item that is a ticket, is a coupon, is currency, a voucher, a traveler's check (see 
column 8 lines 14-18, 13 lines 56-60). 

32. As per claim 32, Whitehouse teaches a system wherein each security device transaction 
data includes one or more of an ascending register value, a descending register value, a 
respective cryptographic module ID, an indicium key certificate serial number, a licensing ZIP 
code, a key token for an indicium signing key, user secrets, a key for encrypting user secrets, 
date and time of last transaction, last challenge received from a respective client subsystem, an 
operational state of the respective module, expiration dates for keys, and a passphrase repetition 
list (see column 9 lines 12-67, 13 lines 20-36, 14 lines 25-55). 

33. As per claim 33, Whitehouse teaches a system wherein each security device transaction 
data includes one or more of a private key, a public key, and a public key certificate, wherein the 
private key is used to sign module status responses and a VBI which, in conjunction with a 
public key certificate, demonstrates that the module and the VBI are authentic (see column 9 
lines 12-50, 13 lines 20-36). 
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34. As per claim 34, Whitehouse teaches a system wherein the cryptographic module is 
capable of performing one or more of Rivest, Shamir and Adleman (RSA) public key encryption, 
DES, Triple-DES, DSA signature, SHA-1, and Pseudo-random number generation algorithms 
{see column 23 lines 49-59). 

35. As per claim 35, Whitehouse teaches a system wherein the server system further 
comprises one or more of a postal server subsystem, a provider server subsystem, an e-commerce 
subsystem, a staging subsystem, a client support subsystem, a decision support subsystem, a 
SMTP subsystem, an address matching service subsystem, a SSL proxy server subsystem, and a 
web server subsystem {see figs 3 and 4). 

36. As per claim 36, Whitehouse teaches a system wherein the database includes one or more 
of a postal database, a provider database, an e-commerce database, and a membership database 
{see fig 3, 4). 

37. As per claim 37, Whitehouse teaches a system further comprising an address matching 
server for verifying a correct address specified by a user {see column 12 line 65-13 line 15). 

38. As per claim 38, Whitehouse teaches a system further comprising a printer driver 
database for storing supported printer driver information {see figs 3 and 4). 



Application/Control Number: 09/690,243 Page 1 1 

Art Unit: 3621 

39. As per claim 39, Whitehouse teaches a method for printing value-bearing items (VBI) 
(electronic distribution of postage, 100) via a communication network (network, fig 3) including 
a client system (host system, fig 3), and a scalable server system (postal service, 180) (see figs 3, 
4, column 7 line 54-8 line 11), the method comprising interfacing (communicating) with one or 
more users (customer, 104) via the client system (host system, fig 3) communicating with the 
client system over the communication networkfiee figs 3, 4, column 7 line 54-8 line 11), storing 
(storing) user information (user information) in a database (secure central computer 102, 
memory 154) accessible through the network (see fig 4, column 8 lines 23-29, 54-58), and storing 
in the database a plurality of security device transaction data for ensuring authenticity of the one 
or more users, wherein each security device transaction data can be processed in the server 
system in a stateless manner (see figs 3, 4, column 8 line 59-65, 9 line 12-50). Whitehouse fails 
to teach an inventive concept authenticating the one or more users using a scalable cryptographic 
module. However, Lewis et al teach an inventive concept authenticating the one or more users 
using a scalable cryptographic module (see fig 8 column 23 lines 66-26 line 12). Therefore, it 
would have been obvious to one of ordinary skill in the art the invention was made to modify the 
inventive concept of Whitehouse to include Lewis et al's an inventive concept authenticating the 
one or more users using a scalable cryptographic module because this would have enhance the 
security of the system. 

40. As per claim 40, Whitehouse teaches a method wherein each security device transaction 
data is related to a user (see column 9 lines 12-20). 
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41. As per claim 41 , Whitehouse teaches a method further comprising of loading the security 
device transaction data related to a user into the cryptographic module when the user requests to 
operate value bearing item (see column 9 lines 45-50). 

42. As per claim 42, Whitehouse teaches a method further comprising of updating and 
returning the security device transaction data related to a user to the database (see column 9 line 
51-63, 12 line 53-56). 

43. As per claim 43, Whitehouse teaches a method further comprising adding at least one 
more stateless cryptographic module, wherein each cryptographic module is capable of 
processing any of the plurality of security device transaction data (see column 9 line 51-63). 

44. As per claim 44, Whitehouse teaches a method further comprising of authenticating a 
user using any of the cryptographic modules (see column 9 line 51-63). 

45. As per claim 45, Whitehouse teaches a method further comprising load-balancing to 
route user requests to the at least one more cryptographic module see column 19 line 35-20 line 
8). 



46. As per claim 46, Whitehouse teaches a method further comprising load-balancing to 
distribute traffic among the multiple cryptographic modules see column 19 line 35-20 line 8). 
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47. As per claim 47, Whitehouse teaches a method further comprising authenticating any of 
the one or more users using the cryptographic module {see column 9 line 51-63). 

48. As per claim 48, Whitehouse teaches a method comprising partitioning the database 
across a plurality of physical databases {see fig 7). 

49. As per claim 49, Whitehouse teaches a method further comprising encrypting database 
transactions using the cryptographic module {see column 10 line 45-60). 

50. As per claim 50, Whitehouse teaches a method further comprising verifying a user 
password before granting access to the database {see column 15 line 1-17). 

51. As per claim 51, Whitehouse teaches a method further comprising storing one or more 
last database transactions in the database storing one or more last database transactions in the 
cryptographic module; and comparing the one or more last database transactions stored in the 
database with the one or more last database transactions stored in the cryptographic module to 
verify each database transaction {see column 16 line 45-67). 

52. As per claim 52, Whitehouse teaches a method further comprising encrypting 
transactions related to the database using the cryptographic module {see column 15 line 1-17). 
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53. As per claim 53, Whitehouse teaches a method further comprising storing one or more 
last database transactions in the database, storing one or more last database transactions in the 
cryptographic module for comparison with the one or more last database transactions stored in 
the database to verify each database transaction {see column 10 line 45-60), 

54. As per claim 54, Whitehouse teaches a method further comprising preventing further 
database transactions if the one or more last transaction stored in the cryptographic module does 
not compare with the one or more last transaction stored in the database {see column 8 line 63-9 
line 12). 

55. As per claim 55, Whitehouse teaches a method further comprising preventing 
unauthorized modification of data using the cryptographic module {see column 16 line 45-67). 

56. As per claim 56, Whitehouse teaches a method further comprising verifying that the 
database is up to date {see column 10 line 45-60). 

57. As per claim 57, Whitehouse teaches a method further comprising automatically re- 
synchronizing the cryptographic module with the database {see column 9 line 51-63). 

58. As per claim 58, Whitehouse teaches a method further comprising ensuring the proper 
operation of cryptographic security and VBI related meter functions {see column 9 lines 12-20). 
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59. As per claim 59, Whitehouse teaches a method further comprising supporting multiple 
concurrent operators {see fig 7). 

60. As per claim 60, Whitehouse teaches a method further comprising storing information 
about a number of last transactions in a respective internal register of each of the one or more 
cryptographic devices, storing a table including the information about a last transaction in the 
database, comparing the information saved in the respective device with the respective 
information saved in the database; and loading a new transaction data if the respective 
information stored in the device compares with the respective information stored in the database 
{see column 10 line 45- J 1 line 25). 

61. As per claim 61, Whitehouse teaches a method further comprising the step of storing data 
for creating one or more indicium, account maintenance, and revenue protection {see column 10 
line 45-11 line 25): 

62. As per claims 62-65, Whitehouse teaches a method further comprising printing a mail 
piece includes a digital signature, a postage amount, an ascending register of used postage and 
descending register of available postage {see column 13 lines 20-40, 14 line 25-36, 16 lines 19- 
38). 
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63. As per claims 66-71, Whitehouse teaches a method further comprising printing a ticket, a 
bar code, a coupon, currency, a voucher, a traveler's check {see column 7 line 46-53, 8 line 14- 
18, 13 lines 56-60). 

64. As per claim 72, Whitehouse teaches a method wherein the security device transaction 
data includes an ascending register value, a descending register value, a respective cryptographic 
device ID, an indicium key certificate serial number, a licensing ZIP code, a key token for an 
indicium signing key, user secrets, a key for encrypting user secrets, date and time of last 
transaction, last challenge received from a respective client subsystem, an operational state of the 
respective device, expiration dates for keys, and a passphrase repetition list {see column 13 lines 
20-40, 14 line 25-36, 16 lines 19-38). 

65. As per claim 73, Whitehouse teaches a method further comprising performing one or 
more of Rivest, Shamir and Adleman (RSA) public key encryption, DES, Triple-DES, DSA 
signature, SHA-1, and Pseudo-random number generation algorithms using each of the 
cryptographic devices {see 23 lines 49-59). 

66. As per claim 74, Whitehouse teaches a method further comprising keeping track of user 
accesses to a vendor website using a website database {see fig 7). 

67. As per claim 75, Whitehouse teaches a method further comprising storing postal 
transaction data, financial transaction data, customer marketing information, commerce product 
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information, meter license information, meter resets, meter history, and meter movement 
information in an offline database (see column 10 line 45- 11 line 29). 

68. As per claim 76, Whitehouse teaches a method further comprising storing customer 
information, financial transactions, and information for marketing queries in a data warehouse 
database (see column 9 lines 12-31). 

69. As per claim 77, Whitehouse teaches a method further comprising authorizing and 
capturing funds from a customer's account and transferring the funds to a vendor's account using 
an e-commerce server (see column 11 line 60-67). 

70. As per claim 78, Whitehouse teaches a method further comprising verifying a correct 
address specified using a user using an address matching server (see column 9 line 51-63, 12 line 
53-56). 

71. As per claim 79, Whitehouse teaches a method further comprising storing supported 
printer driver information in a printer driver database (see figs 3 and 4). 
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Conclusion 



Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Firmin Backer whose telephone number is (703) 305-0624. The 
examiner can normally be reached on Mon-Thu 9:00 AM - 5:00 PM. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, James Trammell can be reached on (703) 305-9768. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
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